Privacy Policy

This Privacy Policy applies to the website tableplan.io and all its subdomains (the "Sites"), together with the TablePlan web applications and services (the "Services"), owned and operated by GXM Ventures Limited (Company Registration No: 16020232) trading as TablePlan.io ("TablePlan.io", "we", "us", or "our"). This Privacy Policy describes how we collect, use, share, and secure the personal information you provide to us. It also describes your choices regarding use, access, correction, and deletion of your personal information.

1. Definitions

Personal Information refers to any information about you which can be used to identify you. This includes information about you as a person (such as name, address, and date of birth), your devices, payment details, and even information about how you use a website or online service.

The Marketing Site refers to all public-facing informational pages on our website. This includes content such as the homepage, about us, contact information, product descriptions, blog posts, and support resources. Essentially, it's any part of the site accessed from the main tableplan.io domain that provides information about our products and services but does not require user login or interaction with the core functionalities of the web application.

The Web Application consists of all functional pages that require user authentication and are part of the TablePlan.io service delivery. This includes, but is not limited to, user dashboards, event management interfaces, personal profile settings, and tools for arranging seating plans. The web application is primarily accessed through subdirectories of tableplan.io. These pages provide the interactive components of TablePlan.io where users can manage their accounts, collaborate with team members, and control event planning settings.

2. What Data We Collect

We collect both information you knowingly and actively provide us when using or participating in any of our services and promotions, and any information automatically sent by your devices in the course of accessing our products and services.

We only collect and use your personal information when we have a legitimate reason for doing so. In such instances, we only collect personal information that is reasonably necessary to provide our services to you.

We do not sell your personal information or any data you enter into our Services in any way.

Third-party Services and Sub-processors

We share certain information with companies that may be considered our "sub-processors" under GDPR. This information is limited to the following:

Required for the Marketing Site

The following services are required for the operation of the TablePlan.io marketing site:

• Vercel: We use Vercel to host our static assets and client-side code.

Required for the Web Application

The following services, in addition to those required for the marketing site, are necessary for the TablePlan.io web application:

• Supabase: We use Supabase to store user information, authenticate users, and host edge functions.
• Stripe: We use Stripe to handle payments and subscriptions. Privacy Policy of Stripe.

Please note that Supabase, and Stripe only receive your personal information when and after you create a user account with TablePlan.io or make a purchase.

Optional Services

The following services are optional and are strictly opt-in:

• Google Analytics: We use Google Analytics to collect visitor statistics. (Opt-in through cookie notice.).

3. How We Collect Information

We collect the following personal information from you:

Information That You Provide to Us About Yourself

When you sign up for the Services, we request information such as:

• Contact Information: Name and email address.
• Unique Identifiers: Username and password.
• Business-Related Information: Company name (if applicable).

We may collect, hold, use, and disclose information for the following purposes, and personal information will not be further processed in a manner that is incompatible with providing you with our Service's core features.

Information Collected Automatically

When you visit our website, our servers automatically log standard data provided by your web browser. This may include:

• Your device's Internet Protocol (IP) address.
• Your browser type and version.
• The pages you visit.
• The time and date of your visit.
• The time spent on each page.
• Other details about your visit.

If you encounter certain errors while using the site, we may automatically collect data about the error and the circumstances surrounding its occurrence. This data may include technical details about your device and other technical information related to the problem.

Please be aware that while this information may not be personally identifying by itself, it may be possible to combine it with other data to personally identify individual persons.

Information Collected After Opt-In Permission

Upon your consent, we use cookies and similar technologies to collect information about your location and your activities on our website, as well as information about your device and log information. This includes anonymized IP addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data.

You can control the use of cookies at the individual browser level. If you choose to disable cookies, it may limit your use of certain features or functions on our website or Service. See our Cookie Policy for more information.

4. Security

The security of your personal information is important to us. We implement adequate measures to protect the personal information submitted to us, both during transmission and once it is received. We restrict access to personal information to our employees, contractors, and agents who need to know that information in order to operate, develop, or improve our Service. These individuals are bound by confidentiality obligations and may be subject to discipline, including termination and criminal prosecution, if they fail to meet these obligations.

If you have any questions about the security of your personal information, you can contact us using the details provided below.

5. Rights with Respect to Your Information

You have certain rights regarding your personal information under data protection laws. These include the right to:

• Access: Request details of the personal information we hold about you.
• Rectification: Correct any personal information that is inaccurate, out of date, incomplete, or misleading.
• Erasure: Request the deletion of your personal information.
• Restriction: Restrict the processing of your personal information under certain circumstances.
• Data Portability: Receive your personal information in a structured, commonly used, and machine-readable format, and have it transferred to another controller where technically feasible.
• Object: Object to the processing of your personal information if the processing is carried out on a legal basis other than consent.
• Withdraw Consent: Withdraw your consent where you have previously given consent to the processing of your personal information.
• Lodge a Complaint: Bring a claim before your competent data protection authority.

To exercise any of these rights, please contact us through the contact details provided below. Requests can be exercised free of charge and will be addressed by us as early as possible and always within one month.

6. Data Retention

We may retain your information for as long as your account is active or as needed to provide you services, comply with our legal obligations, resolve disputes, and enforce our agreements.

If you delete your data or account, the data will be flagged for removal and will be deleted from our systems within 30 days and from backups within 90 days. If you wish for your personal data to be completely removed from our customer relationship management platform and other third-party services, please send us an explicit request via email. Include your user details and a brief description of your request to facilitate the prompt processing of your data deletion.

7. Policy Regarding Children

We do not aim any of our products or services directly at children under the age of 13, and we do not knowingly collect personal information about children under 13.

8. Limits of Our Policy

Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and policies of those sites and cannot accept responsibility or liability for their respective privacy practices.

9. Changes to This Policy

At our discretion, we may change our Privacy Policy to reflect updates to our business processes, current acceptable practices, or legislative or regulatory changes. If we decide to change this Privacy Policy, we will post the changes here at the same link by which you are accessing this Privacy Policy.

If the changes are significant, or if required by applicable law, we will contact you (based on your selected preferences for communications from us) and all our registered users with the new details and links to the updated or changed policy.

If required by law, we will get your permission or give you the opportunity to opt in to or opt out of, as applicable, any new uses of your personal information.

10. Contact

If you have questions or concerns about this Privacy Policy, please contact us at:

Email: privacy@tableplan.io

Address: